GUIDANCE NOTE ON THE CONCEPT OF RELIANCE

Transcription

1 Final version of 23/02/2009 COCOF 09/0002/01-EN EUROPEAN COMMISSION DIRECTORATE-GENERAL REGIONAL POLICY GUIDANCE NOTE ON THE CONCEPT OF RELIANCE ON THE WORK OF OTHER AUDITORS DISCLAIMER This is a Working Document prepared by the Commission services. On the basis of the applicable Community law, it provides technical guidance to the attention of public authorities, practitioners, beneficiaries or potential beneficiaries, and other bodies involved in the monitoring, control or implementation of Cohesion Policy on how to interpret and apply the Community rules in this area. The aim of the working document is to provide Commission services' explanations and interpretations of the said rules in order to facilitate the implementation of operational programmes and to encourage good practices. However, this guidance is without prejudice to the interpretation of the Court of Justice and the Court of First Instance or evolving Commission decision making practice.

2 1 Preamble The objective of this document is to provide guidance as regards the concept of "reliance on the work of other auditors". The concept of reliance on the work of other auditors should be seen in the context of the "single audit approach". The European Court of Auditors noted in the opinion 2/ that there is no single recognised definition of "single audit". It nevertheless identified specific characteristics of a control system that follows the single audit approach. Such characteristics are: A Community internal control framework should contain common principles and standards (point I of the opinion); Controls should be applied to a common standard and coordinated to avoid unnecessary duplication (point II); Controls should be applied, documented and reported in an open and transparent way, allowing the results to be used and relied upon by all parts of the system (point III); To allow controls to be effective and efficient, legislation underlying policy and processes should be clear and unambiguous, and avoid unnecessary complexity (point IV); Internal control systems should have, at their basis, a chain of control procedures, with each level having specific defined objectives which take into account the work of the others (point V). The opinion 2/2004 of the Court was based on the European Parliament discharge decision on the 2000 financial year, in which the Parliament noted that "the control and audit activities in relation to the EU budget are characterised by a large number of auditors and audit services, each carrying out visits and drawing up reports almost independently but often on the basis of different standards" and asked the Commission "to draw up a report on the feasibility of introducing a single audit model in relation to the EU budget in which each level of control builds on the preceding one, with a view to reducing the burden on the auditee and enhancing the quality of audit activities, but without undermining the independence of the audit bodies concerned" 2. 2 Legal basis The concepts of the single audit and reliance on the work of other auditors are the basis for Article 73 (concerning the cooperation between the Commission and the audit authority) of Regulation (EC) No 1083/2006 and Article 23 of Commission Regulation (EC) No 1828/2006 (concerning the audit authorities and audit bodies at Member State level). In addition, Annex V (model audit strategy), Annex VI (model annual control report) and Annex VIII (model final 1 Opinion No 2/2004 of the Court of Auditors of the European Communities on the "single audit" model (and a proposal for a Community internal control framework), OJ C 107, , pages Paragraph 48 of the Resolution of the European Parliament containing the comments which form an integral part of the decision concerning discharge in respect of the implementation of the general budget of the European Union for the financial year 2000 (Commission), OJ L 158, , pages

3 control report) of Regulation (EC) No 1828/2006 require information on the reliance on the work of others and the coordination and supervisory work of the audit authorities. Article 62 of Regulation (EC) No 1083/2006 does not require the audit authority itself to carry out all the audit work in relation to a programme but it makes the audit authority responsible for ensuring the independence of the other audit bodies and the quality of their work. For European Territorial Cooperation (ETC) programmes, Article 14 of Regulation (EC) No 1080/2006 provides for the single audit authority appointed for each programme to be assisted by a group of auditors comprising representatives of each participating Member State unless the participating Member States decide that the audit authority is authorised to carry out all audit work in the whole programme territory. 3 What does single audit mean in practice and what are its benefits? Underlying the concept of single audit and reliance on the work of other auditors is the objective of making better and more efficient use of audit resources and reducing the burden on the auditee by avoiding uncoordinated and overlapping audit activity. The requirements for achieving this are: good coordination between the audit authorities and other audit bodies in the planning phase, as well as during the execution of the audit plans; audit work carried out on the basis of common standards and methodology by the audit authorities and other audit bodies; immediate exchange and use of audit findings by both the audit authorities and the other audit bodies. Preparation and execution of audits at all levels involves the use of audit results of other parts of the cascade; meetings on a regular basis between the audit authorities and other audit bodies. Where the national structures involve reliance by the audit authority on the work of other audit bodies, the quality of their work becomes a critical element for building up assurance, and the audit authority has the ultimate responsibility for the work of these audit bodies. The audit authority is responsible for ensuring that the work carried out by such bodies is in line with internationally accepted audit standards is in line with the audit strategy is in line with the Community regulatory framework, and can be relied on for purposes of the annual control report. In the case of ETC programmes, the group of auditors should draw up rules of procedure which make clear the assistance which will be provided to the audit authority and provide the means for the audit authority to satisfy itself on the work of other audit bodies. 3

4 4 Relevant Audit Standards Relying on the work of other auditors is a widely accepted and applied audit practice and relevant internationally accepted audit standards have been developed so as to ensure a common understanding of the general principles involved (see section 6). The objective of this guidance note is not to restate the standards, but rather to highlight the most important elements and explain their application to audits in the context of structural actions. Guideline No 25 of the European Implementing Guidelines for the INTOSAI 3 Auditing Standards covers the concept of using the work of other auditors and experts by the European Supreme Audit Institutions. International Standard on Auditing (ISA) No concerns the use of the work of another auditor. Study No 4 of the Public Sector Committee gives a public sector perspective in applying this standard and states that ISA 600 is also applicable in public sector auditing. International Standard on Auditing No 610 covers the theme of considering the work of Internal Audit. This may be applicable in the case of Structural Funds controls, given that in many cases Internal Audit units or structures contribute to the overall audit work. International Standard on Auditing No 620 concerns the use of the work of an expert. International Standard on Quality Control No 1 5 is also relevant in providing definitions and requirements for establishing and maintaining a quality control system. Standard 2050 of the Institute of Internal Auditors 6 (IIA) gives guidance on sharing information and coordination of activities with other bodies that provide assurance. All the above include minimum standards to be applied when relying on the work of other auditors and specify what matters the principal auditor, i.e. the audit authority, has to consider when using the work of another auditor/internal auditors, i.e. other audit bodies. Guideline No 25 specifically refers to the requirements to be respected depending on the extent of the reliance on the work done by other auditors at each phase of the audit, whether for planning purposes, as part of the audit evidence or at the end of the testing. The extent of procedures that the principal auditor should perform to obtain sufficient appropriate audit evidence that the work of the other auditor is adequate for the principal auditor's purposes, in the context of the specific assignment, depends on the phases of the audit where the work of other auditors may be used. Especially when the work is used as audit evidence, the audit authority s review will have to be more detailed. The main principle in all the standards is that the principal auditor is expected to perform audit procedures to ensure that the quality of the work by the other auditors is acceptable and adequate 3 INTOSAI: International Organisation of Supreme Audit Institutions. 4 International Standards on Auditing are available in the website of the International Federation of Accountants (IFAC): The European Guidelines for the INTOSAI auditing standards can be found in the website of the European Court of Auditors: The Public Sector Committee Study No 4 can be found in the website of IFAC: 5 International Standard on Quality Control No 1 is also available in the website of the International Federation of Accountants (IFAC): 6 The standard can be found in the website of the Institute of Internal Auditors: However, it is fully accessible only to members of the Institute. 4

5 and that it has been performed in accordance with internationally accepted audit standards. This is especially important for structural actions as the audit authority has sole responsibility for the audit work performed and the audit opinion expressed. 5 Different options for the organisation of the audit work for programmes The management and control systems of the programmes of Convergence and the Regional competitiveness and employment objectives vary significantly from Member State to Member State, taking account of national administrative structures, practices and procedures. In relation to the audit work, the systems range from a wholly centralised system, where one audit authority performs the totality of the audit work, to highly decentralised structures, where a cascade of audit bodies are involved in executing the audit work under the overall responsibility of the audit authority. Organisation of the audit work for programmes of the European Territorial Cooperation objective may also vary considerably between cross-border, transnational and interregional programmes, as well as on account of the different participating Member States. In all cases, it is the audit authority which is required to submit the annual control report and audit opinion. The following non exhaustive list of scenarios can be identified: 1. The audit authority performs both systems audits and audits of operations. In this case, the audit authority will not be relying on other bodies. Nevertheless, the audit authority may need to take into account other audit work executed, for example internal audits in managing authority or intermediate bodies, in order to better plan and carry out its own audits. 2. The audit authority performs only systems audits and the audits of operations are carried out by other bodies. In this case, the audit authority should establish the initial level of assurance/reliability of the systems, which will serve as a basis for setting the confidence level needed for determining the sample size for the audits of operations. In preparing the annual control report and determining the overall level of assurance and formulating the type of opinion to be issued, the audit authority will need to rely on the results of the audits of operations. 3. The audit authority performs the audits of operations. The systems audits are performed by other bodies. In this case, the audit authority needs the results of the work of the other bodies in order to set a confidence level and select the sample. In addition, the audit authority will use its own results from audit of operations to corroborate the assurance levels set by the other audit bodies and prepare the annual control report and opinion. 4. Systems audits and audits of operations are performed by other audit bodies. In this case, the audit authority relies fully on the work of other bodies for the preparation of the annual control report and opinion. Its audit work is thus limited to supervising and coordinating the work of the other audit bodies. It should be noted that the overall audit planning and risk assessment is one function the audit authority should not delegate. 5. Systems audits and audits of operation are performed by both the audit authority and other bodies. In this case, the allocation of tasks/assignments must be clearly communicated and well coordinated. Furthermore, some ETC programmes may have audit authorities and members of the group of auditors - also involved in audit work of Convergence and Regional competitiveness and 5

6 employment programmes, while other audit authorities may be involved only in audit work of ETC programmes. There may therefore be different levels of experience between audit bodies within the same ETC programme, or for different ETC programmes, within the same Member State. In the framework of the annual control report, the audit authority should report on its coordination and supervisory work on other audit bodies. For further details, see the guidance note with reference COCOF 07/0038/01 on the audit strategy, section 4.6 on reliance on the work of others and the guidance note [number to be added] on the annual control reports and opinion, section 4. For ETC programmes, it is considered that proper coordination and supervision by the audit authority necessitates the timely adoption of clear rules of procedures and instructions to ensure consistency and quality of the audit approach, of the audit methodology and of the input and reporting expected from all representatives of the group of auditors or the audit bodies working on their behalf. The issue of working language(s) agreed in the group of auditors is an essential element to be established in the organisational provisions. 6 General Principles The audit authority, in order to assume its responsibilities when it relies on the audit work of other audit bodies, needs to ensure that the general principles set out below are respected. As already indicated in section 4.6 of the guidance note on the audit strategy, it is expected that the audit authority will have to make an ex-ante assessment of the adherence to these general principles in order to establish the extent of reliance by the audit authority on the work of the other audit bodies. Organisational Structure The audit authority should verify the organisational structure of the audit bodies that are involved in the audit process. The tasks, functions and responsibilities entrusted to them and the scope of their work should be clearly and formally described in writing (and referred to in the audit strategy). All audit bodies should be aware of their role and their position in the audit cascade. A clear description of the reporting lines and obligations to the audit authority should also exist and should be communicated to all auditors involved. Independence In the audit strategy the audit authority is required to confirm that all audit bodies carrying out audits under Article 62 (3) of Regulation (EC) No 1083/2006 have the requisite functional independence. The independence of the audit bodies should concern all potential auditees, i.e. the audit bodies should be independent from managing authorities, certifying authorities, intermediate bodies and beneficiaries. In case where audit bodies are internal audit units, special considerations should be taken into account: the audit authority should be aware of the organisational set up and reporting lines within the organisation in question, in order to estimate the position of the internal audit unit and the risk of impaired independence. For ETC programmes, confirmation of the independence of each member of the group of auditors should be obtained by the audit authority, where the members of the group of auditors carry out audit work themselves in their Member State or supervise/outsource the audit work. In cases where the audit work is outsourced, the contractor should be obliged by the contract to 6

7 immediately inform the audit authority in case ofpossible conflict of interests so that the audit authority, assisted by the group of auditors, can take appropriate measures.. Coordination Where multiple bodies are involved in the audit process, good coordination and clear communication of auditing and reporting requirements among all actors is essential for delivering reliable and timely results. The audit authority should make sufficient arrangements for the coordination of their efforts at the initial planning stage of the audit. This is typically the case of the rules of procedures for ETC programmes, which should set regular meetings of the group of auditors. The audit authority should diffuse important information to the other audit bodies, which is of particular importance to their work, for example, on areas requiring special consideration or where changes occur in audit plans, so that the audit work can be adapted accordingly. Also, the other audit bodies should inform the audit authority of any difficulties encountered, and any scope limitations or significant findings/systemic issues, as soon as possible, so that the audit authority may decide whether supplementary audits are necessary. The audit authority should hold regular (bilateral or multilateral) meetings with the audit bodies, so as to discuss issues of common interest, such as audit planning, preliminary audit results, follow-up of previous findings, methodology and work practices etc. The audit authority for an ETC programme should also take account of any information which it receives from the Commission on the results of Commission audits concerning members of the group of auditors. Professional competence and capacity The audit authority should verify that the audit bodies have sufficient human and adequate resources to execute their tasks under the audit strategy. It should have up to date information of the number of posts, the job descriptions and the required and actual professional qualifications or experience of staff in each audit body. This knowledge may have been obtained from a previous review(s) of the audit body, for example review of its operating policies and procedures or periodic quality reviews of its working papers of selected audits. For ETC programmes, the audit authority should obtain such information from the members of the group of auditors. Conduct of work and quality control The audit authority should have sufficient assurance that the working methods and procedures and audit standards applied by the other audit bodies are appropriate for obtaining reliable audit evidence. The Commission recommends the preparation by the audit authority of common procedures and methodology, in an audit manual used by all audit bodies, so as to ensure that all auditors apply the same standards. Periodic quality reviews of working methods and procedures should be carried out by the audit authority to ensure that the audit reports and findings can be fully relied upon. As provided in section 4.6 of the guidance note on the audit strategy such reviews should cover the audit reports, audit files, working and supporting papers, monitoring and follow-up systems, audit manuals, etc. The quality review procedure (methodology, planning, scope and objectives) should be clearly described in the audit authority's audit manual, and should also include a description of 7

8 the reporting arrangements, coordination activities, preparation of common methodology and practices, where appropriate, training and guidance, etc It should be clear that it does not mean duplicating the work carried out by the other auditors 7. The provisions of this paragraph also apply for ETC programmes. The procedures to allow the audit authority to carry out sufficient quality review should be established by the group of auditors. Access to documents The audit authority should have full and unrestricted access to all documents and records of the other audit bodies involved in the audit process, for purposes of carrying out quality reviews and obtaining adequate assurance that the work of other auditors can be relied upon. In ETC programmes, the rules of procedure to be agreed between the members of the group of auditors should provide for information to the audit authority on the documents and records available; for their location and storage format; for the transmission on request to the audit authority of relevant documents such as audit files, working papers and supporting documents; and where relevant, for translation of any information judged necessary by the audit authority to fulfil its responsibilities. This can be organised either systematically for certain documents [e.g. all systems audit reports], or on request of the audit authority with agreed deadlines [e.g. for the follow-up of a detected weakness]. In addition, access of the audit authority to IT systems of other Member States should be arranged where necessary. Monitoring and supervision As required under Article 58 (e) of Regulation (EC) 1083/2006 the audit authority should have in place a system of reporting and monitoring of tasks entrusted to another body. The procedures applied by the audit authority for monitoring and supervision should be communicated to the Commission through the annual control report (section 6 of the report; the model of which is provided in the Annex VI of the Commission Regulation (EC) 182/2006). Through proper monitoring and supervision of audit work the audit authority needs to have adequate assurance that the information and audit results obtained from other audit bodies are as equally accurate and reliable as its own results. Documenting the reviews The audit authority should keep records of the reviews that it carries out in the framework of monitoring and supervision of the work of other audit bodies and any periodic quality reviews. This may include inter alia the detailed planning, scope and objectives of the reviews, documentation of the results of the reviews, etc. 7 Outsourcing of audit work The audit authority may request another body to enter into a contractual relationship with the contractor. However, the audit authority should be involved at least in the preparation of tender specifications, definition of the scope and methodology of the work, definition of the 7 It is not expected that the audit authority reviews every audit file in detail. However, the audit authority has to ensure that the working methods applied are in line with the internationally auditing standards. Therefore a periodic review of the procedures and a number of files should be sufficient. The audit authority should use its judgement to decide if re-performance of some parts is necessary ie if insufficient audit evidence exists. 8

9 professional standards to be met by the contractor and the evaluation of offers and selection of the contractor. The audit authority must be responsible for the supervision of the work and deliverables (reports etc). Special considerations should be taken into account by the audit authority or the audit bodies when outsourcing audit work: o the tender specifications should be clear and precise with regard to the scope and objectives, definition of tasks, responsibilities and the audit procedures that the external auditor will be requested to carry out; o the audit authority or responsible audit body should have adequate assurance that the external auditor does have the requisite professional competence and capacity to perform the assigned tasks according to internationally accepted audit standards, including an adequate knowledge of the applicable Community regulations; o in case the audit of operations are performed by the external auditor, the selection of the sample should be performed in accordance with the approved audit strategy; o written confirmation should be obtained in respect of each audit assignment that the external auditor has no conflict of interest; o The audit authority or responsible audit body should ensure through sufficient supervision of the work performed by the external auditor that all principles and practices mentioned in section 6 of this guidance note are respected, so that the results are of the appropriate quality and can be relied upon. A quality assurance review should be performed 8. Where the audit work is outsourced the terms of reference and the contract for the outsourced tasks should require the contractor to provide access of the audit authority or the audit body to working papers and supporting documentation held by the contractor. Certain audit tasks should not be outsourced, such as strategic audit planning, risk assessment, selection of the complementary sample, communication and coordination of audit activity. The audit authority should indicate in its annual control report the tasks which have been outsourced. As the tendering procedure can be a long and complex one, sufficient time should be built into the audit planning if audit work is to be outsourced. Therefore, adequate planning, good coordination of the work performed by all actors involved, internal and external, and clear communication are pivotal elements in the audit process. 8 Elements to be considered amongst others are: review of consistency between the executive summary and report, detailed discussions with the external auditors, review of the working papers without actual reperformance, obtaining some supporting documents, etc 9

23/05/2014 EUROPEAN COMMISSION EGESIF_14-0013 DRAFT European Structural and Investment Funds Guidance for Member States and Programme Authorities Designation Procedure (under Articles 123 and 124 of Regulation

L 132/32 COMMISSION IMPLEMTING REGULATION (EU) No 447/2014 of 2 May 2014 on the specific rules for implementing Regulation (EU) No 231/2014 of the European Parliament and of the Council establishing an

Mapping of outsourcing requirements Following comments received during the first round of consultation, CEBS and the Committee of European Securities Regulators (CESR) have worked closely together to ensure

INTOSAI GOV 9150 The International Standards of Supreme Audit Institutions, ISSAIs, are issued by the International Organization of Supreme Audit Institutions, INTOSAI. For more information visit www.issai.org

Report on the annual accounts of the Office of the Body of European Regulators for Electronic Communications for the financial year 2014 together with the Office s reply 12, rue Alcide De Gasperi - L -

Report on the annual accounts of the Education, Audiovisual and Culture Executive Agency for the financial year 2014 together with the Agency s reply 12, rue Alcide De Gasperi - L - 1615 Luxembourg T (+352)

14 December 2006 GUIDELINES ON OUTSOURCING CEBS presents its Guidelines on Outsourcing. The proposed guidelines are based on current practices and also take into account international, such as the Joint

EN EN EN COMMISSION OF THE EUROPEAN COMMUNITIES Brussels, 28.11.2008 COM(2008) 798 final COMMUNICATION FROM THE COMMISSION TO THE COUNCIL, THE EUROPEAN PARLIAMENT, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE

Annex 2: Rules and Procedures for the Swiss-Polish Cooperation Programme Annex 2 is an integral part of the Framework Agreement between the Swiss Federal Council and the Government of the Republic of Poland

ALFI Code of Conduct for Luxembourg Investment Funds Introduction The purpose of the ALFI Code of Conduct is to provide boards of directors with a framework of high-level principles and best practice recommendations

Proposed Guide September 2013 Comments due: 31 October 2013 Proposed Guide for Registered Auditors GUIDANCE ON PERFORMING AUDITS ON BEHALF OF THE AGSA REQUEST FOR COMMENTS REQUEST FOR COMMENTS The Committee

EUROPEAN COMMISSION European Social Fund Guidance on standard scales of unit costs and lump sums adopted under Article 14(1) Reg. (EU) 1304/2013 Version of June 2015 Please consult http://ec.europa.eu/esf/sco

2015 Principles of Best Practice applicable to the distribution of Life Insurance Products on a Cross-border Basis within the EU or a Third Country 1 Principles of Best Practice applicable to the distribution

nicht amtliche Publikation Annex 2: Rules and Procedures for the Swiss- Estonian Cooperation Programme Annex 2 is an integral part of the Framework Agreement between the Swiss Federal Council and the Government

L 210/10 Official Journal of the European Union 10.8.2007 COMMISSION REGULATION (EC) No 951/2007 of 9 August 2007 laying down implementing rules for cross-border cooperation programmes financed under Regulation

EN ECB-PUBLIC OPINION OF THE EUROPEAN CENTRAL BANK of 3 February 2016 on the deposit guarantee scheme (CON/2016/6) Introduction and legal basis On 12 January 2016, the European Central Bank (ECB) received

EGESIF_15_0016-02 final 05/02/2016 EUROPEAN COMMISSION European Structural and Investment Funds Guidance for Member States on Audit of Accounts DISCLAIMER: This is a document prepared by the Commission

Outsourcing Risk Guidance Note for Banks Part 1: Definitions Guideline 1 For the purposes of these guidelines, the following is meant by: a) outsourcing: an authorised entity s use of a third party (the

Regulation on the implementation of the Norwegian Financial Mechanism 2009-2014 adopted by the Norwegian Ministry of Foreign Affairs pursuant to Article 8.8 of the Agreement between the Kingdom of Norway

Office of the Director of Audit Harmonized Audit Manual December 2009 Printed in December 2009 First Edition, December 2009 Offices of the Directors of Audit OECS Countries Harmonized Audit Manual Page

OECD GUIDELINES FOR PENSION FUND GOVERNANCE These Guidelines were approved by the Working Party on Private Pensions on 5 June 2009. OECD GUIDELINES FOR PENSION FUND GOVERNANCE 1 I. GOVERNANCE STRUCTURE

International Standards on Auditing (ISA) and their Use for Second Level Control of European Territorial Cooperation Programmes by Susanne Volz, Financial Control Expert The Programming Period 2007-2013

L 235/10 23.9.2003 DIRECTIVE 2003/41/EC OF THE EUROPEAN PARLIAMT AND OF THE COUNCIL of 3 June 2003 on the activities and supervision of institutions for occupational retirement provision THE EUROPEAN PARLIAMT

EN ECB-PUBLIC OPINION OF THE EUROPEAN CENTRAL BANK of 12 November 2015 on the regulation of companies acquiring credit (CON/2015/45) Introduction and legal basis On 5 November 2015 the European Central

TTIP Proposal for Chapter: Good Regulatory Practices Article 1 General Provisions: 1. The parties reaffirm their commitment to good regulatory principles and practices to achieve public policy objectives

Option Table - Directive on Statutory Audits of Annual and Consolidated Accounts The purpose of this document is to highlight the changes in the options available to Member States and Competent Authorities

EUROPEAN COMMISSION Brussels, 26.11.2012 C(2012) 8548 final COMMISSION IMPLEMENTING DECISION of 26.11.2012 Implementing Regulation (EU) No 492/2011 of the European Parliament and of the Council as regards

ISSAI 100 The International Standards of Supreme Audit Institutions, or ISSAIs, are issued by INTOSAI, the International Organisation of Supreme Audit Institutions. For more information visit www.issai.org

Conseil UE Council of the European Union Brussels, 28 July 2015 (OR. en) PUBLIC 11243/15 LIMITE DRS 50 CODEC 1084 NOTE From: To: Subject: General Secretariat of the Council Delegations Proposal for a DIRECTIVE

the European Economic Area (EEA) Financial Mechanism 2009-2014 adopted by the EEA Financial Mechanism Committee pursuant to Article 8.8 of Protocol 38b to the EEA Agreement on 13 January 2011 and confirmed

Internal Audit Standards Department of Public Expenditure & Reform November 2012 Copyright in material supplied by third parties remains with the authors. This includes: - the Definition of Internal Auditing

This is an official translation. The original Icelandic text published in the Law Gazette is the authoritative text. Merchants and Trade - Act No 28/2001 on electronic signatures Chapter I Objectives and

Rolls Royce s Corporate Governance ADOPTED BY RESOLUTION OF THE BOARD OF ROLLS ROYCE HOLDINGS PLC ON 16 JANUARY 2015 Contents INTRODUCTION 2 THE BOARD 3 ROLE OF THE BOARD 5 TERMS OF REFERENCE OF THE NOMINATIONS

Audit authority Audits of Systems, Operations and Accounts Trainer:Dermot Byrne Head of Authority ERDF Audit Authority, Ireland Brussels September 2014 This training has been organised by EIPA-Ecorys-PwC

Auditing Guidance Statement AGS 1042 (July 2002) Reporting on Control Procedures at Outsourcing Entities Prepared by the Auditing & Assurance Standards Board of the Australian Accounting Research Foundation

EN ECB-PUBLIC OPINION OF THE EUROPEAN CENTRAL BANK of 19 October 2015 on the regulation of financial leasing and financial leasing companies activities (CON/2015/37) Introduction and legal basis On 4 September

TEXTUAL PROPOSAL SANITARY AND PHYTOSANITARY MEASURES (SPS) Article 1 Scope and coverage This Chapter applies to all SPS measures that may, directly or indirectly, affect trade between the Parties. This

Decision No. 2011-316 dated 6 October 2011 adopting a standard for delivering privacy seals in audit procedures covering the protection of persons with regard to the processing of personal data The French

UNOFFICIAL CONSOLIDATION AND TRANSLATION OF LAWS 128(I) OF 2009 AND 52(I) OF 2010 THE PAYMENT SERVICES LAWS OF 2009 TO 2010 This translation and consolidation of laws is not official. It has been prepared

Non-official Publication Modified Version June 2012 Annex 1: Conceptual Framework of the Estonian-Swiss Cooperation Programme The Conceptual Framework is an integral part of the Framework Agreement between

ISSAI 200 ISSAI The 200 International Fundamental Standards Principles of Supreme of Financial Audit Institutions, Auditing or ISSAIs, are issued by INTOSAI, the International Organisation of Supreme Audit

Application of Data Protection Concepts to Cloud Computing By Denitza Toptchiyska Abstract: The fast technological development and growing use of cloud computing services require implementation of effective

Comments and proposals on the Chapter IV of the General Data Protection Regulation Ahead of the trialogue negotiations later this month, EDRi, Access, Panoptykon Bits of Freedom, FIPR and Privacy International

25.11.2004 Official Journal of the European Union L 349/1 I (Acts whose publication is obligatory) COUNCIL REGULATION (EC) No 2007/2004 of 26 October 2004 establishing a European Agency for the Management

EUROPEAN COMMISSION Brussels, 15 December 2009 SEC(2009) 1720 final COMMUNICATION TO THE COMMISSION FROM MR POTOČNIK IN AGREEMENT WITH VICE-PRESIDENT KALLAS Simplification of the recovery process in the

COMMISSION OF THE EUROPEAN COMMUNITIES Brussels, 16.3.2004 COM(2004) 177 final 2004/0065 (COD) Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on statutory audit of annual accounts

The International Standards of Supreme Audit Institutions, ISSAI, are issued by the International Organization of Supreme Audit Institutions, INTOSAI. For more information visit www.issai.org. Financial

MEMORANDUM OF UNDERSTANDING ON THE IMPLEMENTATION OF THE NORWEGIAN FINANCIAL MECHANISM 2009 2014 between THE REPUBLIC OF HUNGARY hereinafter referred to as the Beneficiary State and THE KINGDOM OF NORWAY,

EUROPEAN COMMISSION AGRICULTURE DIRECTORATE-GENERAL Guidelines for the mid term evaluation of rural development programmes 2000-2006 supported from the European Agricultural Guidance and Guarantee Fund

Effective Internal Audit in the Financial Services Sector Recommendations from the Committee on Internal Audit Guidance for Financial Services: How They Relate to the Global Institute of Internal Auditors

EUROPEAN COMMISSION Employment, Social Affairs and Inclusion DG Employment and Social Legislation, Social Dialogue Labour Law BUDGET HEADING 04.03.03.03 INFORMATION, CONSULTATION AND PARTICIPATION OF REPRESENTATIVES

Appendix 14 CORPORATE GOVERNANCE CODE AND CORPORATE GOVERNANCE REPORT The Code This Code sets out the principles of good corporate governance, and two levels of recommendations: code provisions; and recommended

EUROPEAN COURT OF AUDITORS AUDIT METHODOLOGY AND SUPPORT UNIT DEVELOPING THE AUDIT OBJECTIVES TABLE OF CONTENTS FOREWORD FOREWORD SECTION 1: What is the purpose of the method? SECTION 2: When to use it